SWIFT-CSCF Assessment

Consileon conducts the SWIFT-CSCF assessment for you and implements necessary measures together with you

For a long time, the Society for Worldwide Interbank Financial Telecommunications (SWIFT) operated primarily as a secure communications channel for banks’ international payment transactions. This is still the case today. Internationally, practically no money can be moved without the SWIFT system. Currently, about 11,000 banks and financial institutions are connected to the SWIFT payment traffic and together move about six trillion U.S. dollars per day.

A successful hacker attack, in which criminals managed to break into a bank’s internal system and were then able to make transfers using the secure SWIFT network, made SWIFT realize that it must also ensure sufficient security within its affiliated banks.

SWIFT therefore commits all participating institutions to a strict security program, the Customer Security Controls Framework (CSCF). This ensures that all areas relevant to payment transactions and communicating with SWIFT are strictly shielded from the rest of the financial institution’s IT systems and the Internet.

More information (in German)
Drei Consileon Mitarbeiter sind in einem Meeting im Büro.

Our certified experts will be happy to conduct the external SWIFT-CSCF assessment for you.

Contact us!

Important information!

Schutz Netzwerksicherheit Computer und sicher Ihre Daten Konzept. Digitale Kriminalität durch einen anonymen Hacker

SWIFT users are required to submit their self-certifications of compliance with mandatory and, where applicable, recommended security controls to an independent audit by the end of 2021. What this means for you as a SWIFT user is that you will need to demonstrate an independent audit based on CSCF v2021 by the end of next year. The SWIFT network has extended the deadline due to the Corona pandemic. We would be happy to advise you on this.

Consileon is listed by SWIFT* and can perform the mandatory, independent SWIFT assessment for you. Please do not hesitate to contact us.

Reference

  • “To improve the security of global payments, SWIFT has established the Customer Security Programme (CSP), which requires SWIFT users to certify the level of implementation of the requirements from the SWIFT CSP. SWIFT updates this on a regular basis, regularly converting recommended controls into mandatory ones. Already in 2019, the Independent Assessment Framework has been imposed on us as a SWIFT A1 Full Stack architecture operator. In the context of this challenge, Consileon Business Consultancy’s strengths – in addition to its methodological and technical expertise – include its partnership approach and flexibility. Developing customized solutions together with us was as much part of Consileon’s competence and ambition as accompanying us until we achieved a test certificate.”

    (This statement has been translated from German into English)

    by Patrick Werner – Senior Vice President, Swiss Euro Clearing Bank

What we can do for you

Consileon is listed by SWIFT*. You will receive the following services from us:

1

We are your partner for external assessment and CSCF certification.

2

As a SWIFT auditor, we help you raise your operational cyber security to the necessary standard for SWIFT.

3

We design the IT architecture of your SWIFT Secure Zone with you.

4

We work with you to establish a robust cyber incident response process that can withstand today’s threats.

5

We conduct red teaming exercises. This means that we carry out controlled attacks on your IT systems to uncover security vulnerabilities.

*Disclaimer: SWIFT does not certify, warrant, endorse or recommend any of the service providers listed in the Directory. SWIFT customers are not obligated to use the providers listed in the directory.

Our expert for IT security will be happy to consult you

Portrait von Jan Oetting, Cyber-Security Experte

Jan Oetting, who studied computer science, has been with Consileon for 11 years.

After a year of parental leave in Taiwan, Jan returned last year with a new topic: cyber security. Its importance is not yet high enough in German companies, as Jan finds. Using the latest tools and techniques, Jan is doing everything he can to make customer communications and IT systems in German companies more secure.

+49 152 22877905
jan.oetting@consileon.de

*Disclaimer: SWIFT does not certify, warrant, endorse or recommend any of the service providers listed in the Directory. SWIFT customers are not obligated to use the providers listed in the directory.

Please contact us regarding a SWIFT-CSCF certification of your company.

Our expert will advise you in detail.

Data protection**
*
This field is for validation purposes and should be left unchanged.

You might also be interested in...

Cyber Attacks from russia

Warning against cyber attacks on media

Consileon’s head of cyber security, Jan Oetting, suspects that one pillar of critical infrastructure in particular is at risk: communications and media. He explains here why we should protect this area particularly well against hacker attacks.

Russicher Cyber Hacker greift westliche Banken an nach dem Russland SWIFT-Ausschluss

“Russia has the world’s best hackers.”

Jan Oetting is considered a SWIFT expert and has already spoken recently about the consequences of Russia’s possible exclusion from the global financial communication system SWIFT. This interview looks at the dangers of Russian cyber attacks.